Buffer Overflow in Unicode Processing in Quick 'n Easy FTP Server by Pablo Software Solutions
CVE-2006-2027

Currently unrated

Key Information:

Vendor: Pablo Software Solutions
Status: Quick N Easy Ftp Server
Vendor: CVE Published:; 26 April 2006

🔔 Create Pablo Software Solutions Vulnerability Alert

What is CVE-2006-2027?

A buffer overflow vulnerability exists in the Unicode processing within the logging functionality of Quick 'n Easy FTP Server by Pablo Software Solutions. This issue allows remote authenticated users to execute arbitrary code by sending a command with an excessively long argument. When an administrator accesses the Logging section in the FTP server's main window, the overflow can be triggered, potentially compromising the server's integrity. This vulnerability primarily affects versions 3.0 of both Professional and Lite editions. It is worth noting that there have been disputes regarding the existence of this issue from the vendor.

References

http://www.securityfocus.com/bid/17681

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/431920/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://securityreason.com/securityalert/788

third-party-advisoryx_refsource_SREASON

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 26, 2006
Vulnerability Reserved
Apr 25, 2006